Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d96c622-4e8a-45b0-838c-248133f31be9.roa
File: 6d96c622-4e8a-45b0-838c-248133f31be9.roa (raw, json)
Hash identifier: 5NtIaEHAhhEpVg3MXEmCLuQ3eW3TqDnQ9Tc/3e85RAA=
Subject key identifier: 50:32:69:89:F5:42:C9:5E:A9:22:F3:6A:2A:41:CA:2E:92:F8:65:CC
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 6233EA2D3FF1B8377EB0AE06DC28E1CDFABB497C
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d96c622-4e8a-45b0-838c-248133f31be9.roa
Signing time: Mon 06 Oct 2025 16:22:40 +0000
ROA not before: Mon 06 Oct 2025 16:22:40 +0000
ROA not after: Mon 10 Nov 2025 23:59:59 +0000
asID: 14618
IP address blocks: 44.216.192.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:33:ea:2d:3f:f1:b8:37:7e:b0:ae:06:dc:28:e1:cd:fa:bb:49:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 6 16:22:40 2025 GMT
Not After : Nov 10 23:59:59 2025 GMT
Subject: serialNumber=4eb010ca255d70d33c45c9c76e881a12186423b463ba63e9adcffff54932480e, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:75:da:2a:e6:18:60:9b:77:01:1f:41:23:81:
ba:ad:4d:3d:e1:ce:fc:46:21:44:7f:aa:d7:84:ef:
f7:ec:2a:a9:da:f9:b9:4e:77:f4:a7:9c:a6:ba:44:
29:95:66:ae:46:c3:14:8e:c3:1e:1c:2b:72:88:30:
e3:33:40:ae:6a:52:47:cf:a9:47:ab:e3:d2:03:e5:
cb:53:5f:30:0b:94:0d:64:34:d9:f7:43:c0:b1:6d:
19:b6:41:7a:ed:6a:49:f5:dd:dd:52:3c:9a:8a:ac:
ff:71:cb:5d:0d:93:3a:ef:fc:4d:ef:bb:2c:eb:29:
a0:0b:d6:86:39:3e:96:58:82:d7:08:ef:b2:9f:b9:
38:3e:c4:91:9e:4f:0c:8e:18:4d:9f:33:bf:2c:74:
a1:0d:94:71:aa:96:89:8f:3f:68:d5:bc:1e:27:01:
95:98:6f:a9:24:04:36:5a:41:37:79:01:ad:a4:92:
6f:6a:19:ed:55:7c:f8:0a:d2:da:3c:87:c7:1b:dd:
cb:18:25:15:c5:6e:3e:62:33:3f:a4:57:a8:bf:07:
be:a6:5f:72:ef:78:6a:a0:fc:63:e1:e0:5e:a3:8e:
44:c9:f2:89:7f:e0:fc:f5:65:f3:55:6e:98:3d:ae:
10:9b:45:d0:17:65:08:7c:23:c0:3f:4c:ac:b8:2c:
62:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:32:69:89:F5:42:C9:5E:A9:22:F3:6A:2A:41:CA:2E:92:F8:65:CC
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d96c622-4e8a-45b0-838c-248133f31be9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
44.216.192.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:9c:43:fd:66:5e:7b:44:57:e9:09:b9:a8:5b:a2:d2:19:a9:
c4:43:4f:57:e3:76:7a:a9:55:21:60:0f:00:75:75:3d:ee:95:
d4:7e:b5:6f:e7:0a:93:62:cd:8d:52:8d:bc:89:20:92:5a:5c:
76:ab:19:fc:d0:62:6c:05:7f:41:3d:b8:7d:bd:5f:80:b2:20:
e9:59:da:a5:a2:8c:06:fc:c9:3e:8d:ac:33:01:e9:27:5f:ad:
a3:ce:9d:bf:74:a9:fb:74:2d:ac:2d:79:4c:55:ad:5a:0e:55:
76:3c:c3:3a:2e:f5:1d:70:5d:e2:f4:f2:bf:ff:ba:7f:e0:59:
36:20:5d:c8:3c:54:b5:c9:c2:6a:6c:a7:70:8e:30:0f:14:24:
d3:57:21:77:ff:64:2d:9b:3e:db:4d:23:11:45:72:73:3a:a5:
c0:78:a2:fd:99:1d:c3:2b:7e:85:1b:14:c5:52:6e:82:0b:7f:
4a:ad:96:55:94:79:f2:fc:37:79:d4:25:7c:24:53:6a:fd:ae:
14:d3:b4:38:ef:7a:0f:92:a3:b5:6d:c2:5c:34:cf:b3:4c:e3:
0d:83:82:09:ea:60:89:20:5c:40:2d:e4:79:df:36:c3:2e:41:
56:bb:16:fa:67:1d:d1:df:b9:d8:66:e1:5b:a2:b9:cc:cd:65:
e1:f9:ae:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 8 19:43:04 2025 by rpki-client